This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/BAVWZ2GqddVuzhP06KD0A_bCtt4.roa File: BAVWZ2GqddVuzhP06KD0A_bCtt4.roa (raw, json) Hash identifier: eKvOsbHOl1mbbSCZG1SoTdZdmz2aVvIhgRs7YLzoCNw= Subject key identifier: 04:05:56:67:61:AA:75:D5:6E:CE:13:F4:E8:A0:F4:03:F6:C2:B6:DE Certificate issuer: /CN=24504c74c7127090a4cff85001f443149e128e60 Certificate serial: 019B7CEE29F8A7005179FD62330C6FB5E3CB Authority key identifier: 24:50:4C:74:C7:12:70:90:A4:CF:F8:50:01:F4:43:14:9E:12:8E:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFBMdMcScJCkz_hQAfRDFJ4SjmA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/BAVWZ2GqddVuzhP06KD0A_bCtt4.roa Signing time: Fri 02 Jan 2026 04:19:01 +0000 ROA not before: Fri 02 Jan 2026 04:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203775 IP address blocks: 185.124.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/JFBMdMcScJCkz_hQAfRDFJ4SjmA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/JFBMdMcScJCkz_hQAfRDFJ4SjmA.mft rsync://rpki.ripe.net/repository/DEFAULT/JFBMdMcScJCkz_hQAfRDFJ4SjmA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:29:f8:a7:00:51:79:fd:62:33:0c:6f:b5:e3:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24504c74c7127090a4cff85001f443149e128e60 Validity Not Before: Jan 2 04:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0405566761aa75d56ece13f4e8a0f403f6c2b6de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2f:ea:00:2c:f6:ae:c0:45:23:4b:6a:aa:04: b2:03:ef:a5:19:0e:e3:c8:a3:ab:41:29:85:d4:89: 81:26:65:c9:93:e8:7f:00:29:10:da:44:e0:10:aa: 32:cc:d2:69:eb:bc:7e:91:a3:b9:da:ab:6b:08:14: 36:14:70:a7:c3:ce:28:ef:ba:30:90:29:75:00:2e: f1:df:3e:46:ca:fe:27:cd:9c:ff:69:21:e4:cd:3d: dd:1a:ba:9e:8a:58:b0:7b:e2:82:4e:7f:bd:0b:61: 91:49:cb:eb:25:ce:66:42:8d:40:47:59:7d:25:51: 17:bf:bb:eb:2e:e6:e9:ca:27:53:c7:3d:64:24:e0: 66:c7:1a:5c:72:9b:14:a5:b1:f4:91:98:05:21:f9: cc:ff:cf:ca:47:bd:76:e0:e5:f1:54:0a:b8:cc:f4: 16:50:48:b0:16:7b:23:c9:f2:ab:05:39:fb:29:42: 6a:36:77:83:73:00:69:97:11:bf:de:de:e4:07:c0: e7:5b:86:ec:b4:0a:21:5c:34:0f:35:fe:5a:27:e3: f1:7a:80:9b:f3:b9:ef:88:79:d5:9e:ba:1b:e9:b1: a5:85:14:2e:7e:4b:11:e9:ca:16:a7:af:2c:34:f0: a3:bc:38:20:09:b9:b2:c6:5f:37:31:39:a4:82:fe: 80:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:05:56:67:61:AA:75:D5:6E:CE:13:F4:E8:A0:F4:03:F6:C2:B6:DE X509v3 Authority Key Identifier: keyid:24:50:4C:74:C7:12:70:90:A4:CF:F8:50:01:F4:43:14:9E:12:8E:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFBMdMcScJCkz_hQAfRDFJ4SjmA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/BAVWZ2GqddVuzhP06KD0A_bCtt4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/JFBMdMcScJCkz_hQAfRDFJ4SjmA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.124.32.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:80:cc:bd:77:25:bc:55:da:9a:1c:42:cb:93:97:cf:1f:09: e6:59:f5:90:59:6f:cc:30:34:0f:60:9a:e8:e1:56:4b:11:8a: 89:29:3b:3c:66:67:de:3d:fd:69:cd:53:31:2f:e8:ef:8e:03: 15:e2:cc:29:7a:b2:1b:fe:5a:87:db:94:f9:8f:c6:83:e8:b1: c2:30:97:5e:36:e2:00:f7:79:08:fa:cd:f4:ab:1b:cd:a9:ee: 72:4e:93:60:b3:1e:cb:db:c7:9b:6e:20:36:a4:9d:45:9d:69: 14:94:b1:58:b7:37:33:8a:fc:fd:c2:5f:39:2e:50:be:c5:0b: 96:da:b2:2f:84:b0:57:52:7d:d6:38:0d:9e:48:99:ab:48:9b: 90:66:76:6e:b1:7f:78:b8:71:79:3d:05:be:96:88:51:23:e0: c8:46:90:85:cd:f7:f7:60:3f:3b:94:94:4a:f1:4b:57:f7:c6: 55:bb:89:1e:e0:08:d8:95:75:36:93:98:01:2a:ae:29:68:95: 72:46:8e:b8:21:1f:aa:be:5c:08:1e:c3:ad:81:07:55:81:be: a8:54:b9:a6:2a:07:01:e1:e9:a1:49:4c:ef:81:bd:d0:91:0e: c4:0c:d5:00:27:ed:5b:e7:17:af:07:07:3d:7c:a4:27:d6:82: 54:84:6c:6a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87in4pwBRef1iMwxvtePLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NTA0Yzc0YzcxMjcwOTBhNGNmZjg1MDAxZjQ0MzE0OWUx MjhlNjAwHhcNMjYwMTAyMDQxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDA1NTY2NzYxYWE3NWQ1NmVjZTEzZjRlOGEwZjQwM2Y2YzJiNmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC/qACz2rsBFI0tqqgSyA++lGQ7j yKOrQSmF1ImBJmXJk+h/ACkQ2kTgEKoyzNJp67x+kaO52qtrCBQ2FHCnw84o77ow kCl1AC7x3z5Gyv4nzZz/aSHkzT3dGrqeiliwe+KCTn+9C2GRScvrJc5mQo1AR1l9 JVEXv7vrLubpyidTxz1kJOBmxxpccpsUpbH0kZgFIfnM/8/KR7124OXxVAq4zPQW UEiwFnsjyfKrBTn7KUJqNneDcwBplxG/3t7kB8DnW4bstAohXDQPNf5aJ+PxeoCb 87nviHnVnrob6bGlhRQufksR6coWp68sNPCjvDggCbmyxl83MTmkgv6A1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAQFVmdhqnXVbs4T9Oig9AP2wrbeMB8GA1UdIwQY MBaAFCRQTHTHEnCQpM/4UAH0QxSeEo5gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkZCTWRNY1NjSkNrel9oUUFmUkRGSjRTam1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zOTZlOGItNzFkMy00NmJmLWEyNDQt ZDA2MjJjNGNkNDhkLzEvQkFWV1oyR3FkZFZ1emhQMDZLRDBBX2JDdHQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8zOTZlOGItNzFkMy00NmJmLWEyNDQtZDA2MjJjNGNkNDhk LzEvSkZCTWRNY1NjSkNrel9oUUFmUkRGSjRTam1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXwgMA0G CSqGSIb3DQEBCwUAA4IBAQCfgMy9dyW8VdqaHELLk5fPHwnmWfWQWW/MMDQPYJro 4VZLEYqJKTs8ZmfePf1pzVMxL+jvjgMV4swperIb/lqH25T5j8aD6LHCMJdeNuIA 93kI+s30qxvNqe5yTpNgsx7L28ebbiA2pJ1FnWkUlLFYtzczivz9wl85LlC+xQuW 2rIvhLBXUn3WOA2eSJmrSJuQZnZusX94uHF5PQW+lohRI+DIRpCFzff3YD87lJRK 8UtX98ZVu4ke4AjYlXU2k5gBKq4paJVyRo64IR+qvlwIHsOtgQdVgb6oVLmmKgcB 4emhSUzvgb3QkQ7EDNUAJ+1b5xevBwc9fKQn1oJUhGxq -----END CERTIFICATE-----Generated at Tue Jan 27 04:40:46 2026 by rpki-client